Avoid overwrite on php.ini every php update

troya

Verified User
Joined
Jul 8, 2019
Messages
9
Hello,

I have many more functions to disable for every version of php ini files than directadmin does by enabling secure_php.
I usually edit the php.ini by adding more functions into disable_functions, however;
Everytime when php update, custombuild update, it overwrites my desired disable_functions list and I end up insecure php config.
How can i avoid this to happen?
How can i add more functions to the secure_php OR replace disable_function with my list for every installed version of php.ini?

Thanks
 

smtalk

Administrator
Staff member
Joined
Aug 22, 2006
Messages
8,951
Location
LT, EU
Just add all of the functions to custom/php_disable_functions, like:
Code:
exec,system,passthru,shell_exec,proc_close,proc_open,dl,popen,show_source,posix_kill,posix_mkfifo,posix_getpwuid,posix_setpgid,posix_setsid,posix_setuid,posix_setgid,posix_seteuid,posix_setegid,posix_uname
 

Richard G

Verified User
Joined
Jul 6, 2008
Messages
4,597
Location
Maastricht
Just out of curiousity, how often are important php.ini changes made by php so a php.ini update is needed?
 
Top